AWS Security ChangesHomeSearch

AWS awscloudtrail documentation change

Service: awscloudtrail · 2025-05-28 · Documentation low

File: awscloudtrail/latest/userguide/cloudtrail-create-and-update-a-trail-by-using-the-aws-cli.md

Summary

Updated CLI documentation to include digest files and event data stores in encryption context

Security assessment

The change expands encryption documentation to cover additional resource types (digest files and event data stores), but does not indicate a security vulnerability was addressed.

Diff

diff --git a/awscloudtrail/latest/userguide/cloudtrail-create-and-update-a-trail-by-using-the-aws-cli.md b/awscloudtrail/latest/userguide/cloudtrail-create-and-update-a-trail-by-using-the-aws-cli.md
index 956705e03..74acf290b 100644
--- a//awscloudtrail/latest/userguide/cloudtrail-create-and-update-a-trail-by-using-the-aws-cli.md
+++ b//awscloudtrail/latest/userguide/cloudtrail-create-and-update-a-trail-by-using-the-aws-cli.md
@@ -62 +62 @@ The `create-trail` and `update-trail` commands offer a variety of functionality
-  * Enabling or disabling log file encryption with the `--kms-key-id` option. The option specifies an AWS KMS key that you already created and to which you have attached a policy that allows CloudTrail to encrypt your logs. For more information, see [Enabling and disabling CloudTrail log file encryption with the AWS CLI](./cloudtrail-log-file-encryption-cli.html).
+  * Enabling or disabling log file encryption with the `--kms-key-id` option. The option specifies an AWS KMS key that you already created and to which you have attached a policy that allows CloudTrail to encrypt your logs. For more information, see [Enabling and disabling encryption for CloudTrail log files, digest files and event data stores with the AWS CLI](./cloudtrail-log-file-encryption-cli.html).